CVE-2023-30192
published 2023-05-12CVE-2023-30192: Prestashop possearchproducts 1.7 is vulnerable to SQL Injection via PosSearch::find().
PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
2.68%
83.9th percentile
Prestashop possearchproducts 1.7 is vulnerable to SQL Injection via PosSearch::find().
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| prestashop | possearchproducts | — | — |
Detection & IOCsextracted from sources · hover to see the quote
versionpossearchproducts 1.7
- →SQL Injection entry point is the PosSearch::find() method in the possearchproducts module; monitor HTTP requests targeting this module's search endpoint for SQL metacharacters or payloads.
- →Detection rule triggers on HTTP responses containing the string 'products' (case-insensitive) with a non-404 status code, indicating a successful probe of the vulnerable search endpoint.
- ·The Sigma-style rule digest is embedded in the source; verify rule integrity against the digest before deployment.
- ·The detection condition uses response-body content matching ('products') which may produce false positives on any legitimate PrestaShop search response; tune with additional SQL-injection payload indicators.
- ·Affected version is explicitly listed as possearchproducts 1.7; scope detection and patching efforts to installations running this specific module version.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
PrestaShop 'possearchproducts' <= 1.7 - SQL Injection
nuclei·CVSS 9.8
CVE-2023-30192 [CRITICAL] PrestaShop 'possearchproducts' <= 1.7 - SQL Injection
PrestaShop 'possearchproducts' =6'
- 'contains(tolower(response), "products")'
- 'status_code != 404'
condition: and
# digest: 4a0a0047304502201329c32766578e53bd1ff0345fe58f55b7210fd0162ebf2a8c929026b41b87e6022100bd519992162ce4d824748667199ae6bb4f4c4be11c412cc15ec7ff6dc34c75fa:922c64590222798bb761d5b6d8e72950
2023-05-12
Published